Katenae

Privacy Policy

Effective July 2, 2026

At a glance

Data linked to you
  • Email address
  • Name & profile photo (Google sign-in only)
  • Your study content (notes, highlights, drawings)
  • Account identifiers
Data used to track you
  • None
No advertising, no cross-site tracking, no third-party analytics, and we never sell your data.
Not collected
  • Financial information
  • Location
  • Contacts
  • Browsing history

Who we are

Katenae (“we,” “us”) operates the scripture-study application at katenae.io. This policy describes what personal information we collect, why, and the choices you have. For anything privacy-related, contact us at support@katenae.io.

What we collect and why

  • Account data. Your email address and a password (stored only as a secure hash by our authentication provider), or — if you sign in with Google — your name, email address, and profile photo as shared by Google. Used to create and secure your account.
  • Study content. The studies you create: verse references, highlights, notes, reflections, drawings, and folders. This content is private to your account and protected by database-level access rules; other users cannot read it.
  • Transactional email. We send account emails (confirmation, password reset) through our email provider. We do not send marketing email.
  • Technical logs. Our hosting providers briefly retain standard server logs (IP address, browser user-agent, request timestamps) for security, abuse prevention, and operations.
  • Cookies. We use essential cookies only — the session cookie that keeps you signed in and a local preference for your chosen theme. There are no advertising or analytics cookies.

We do not use third-party analytics services (such as Google Analytics) at this time. If that changes, we will update this policy first.

AI features

Katenae includes one optional feature that uses artificial intelligence: the cross-study graph can generate short study insights — concept labels, summaries, and descriptions of how two of your studies relate — using a third-party large-language-model service (Google AI Studio). When this feature is active, the study material needed to produce the insight (study titles, verse references, key words, and notes) is sent to that service for processing and the generated result is stored with your account.

AI-generated insights are machine-generated: they may be inaccurate or incomplete, and they are not theological, pastoral, or professional advice. Nothing else in Katenae is AI-generated — scripture text, lexicons, cross-references, and commentaries are reproduced from the historical and openly licensed sources listed on our Credits page. If the insights feature is not enabled, no data is sent to any AI service.

Service providers

We share data only with the processors required to run the service:

  • Supabase — database and authentication hosting (United States).
  • Vercel — application hosting and content delivery.
  • Resend — delivery of transactional email.
  • Google — optional sign-in (OAuth) and, when enabled, the AI insights feature described above.
  • bible.helloao.org — public-domain commentary text, fetched by our servers; no personal data is sent.

We never sell personal information, and we do not share it for cross-context behavioral advertising.

Retention and deletion

We keep your data for as long as your account exists. You can delete your account at any time from Preferences → Delete account inside the app — this permanently removes your account and all studies, notes, and related data. Residual copies in encrypted backups expire on the backup rotation schedule.

Your rights

Wherever you live, you may ask us to access, correct, export, or delete your personal information, or object to how we process it, by emailing support@katenae.io. We will verify the request against your account email and respond within the time required by applicable law.

California residents (CCPA/CPRA)

In the last 12 months we have collected the categories of personal information described above: identifiers (email, account ID), user-provided content, and internet activity logs. We do not sell personal information and do not share it for cross-context behavioral advertising, so there is nothing to opt out of. California residents have the right to know, correct, and delete personal information, and the right not to be discriminated against for exercising those rights. To exercise them, email support@katenae.io; you may also use an authorized agent.

Children

Katenae is not directed to children under 13, and we do not knowingly collect personal information from them. If you believe a child under 13 has created an account, contact us and we will delete it.

Security

All traffic is encrypted in transit (TLS) and data is encrypted at rest by our hosting providers. Passwords are stored only as secure hashes. Access to your studies is enforced with row-level security in the database — queries are scoped to your account at the database layer, not just in application code.

Where data is processed

Our infrastructure is hosted in the United States. If you use Katenae from elsewhere, your data is transferred to and processed in the U.S.

Changes to this policy

We will post any changes on this page and update the effective date. For material changes, we will notify you by email or an in-app notice before they take effect.

Contact

Questions or requests: support@katenae.io